This week's roundup of all the cloud news.
Here's a round up of all things GCP, Azure and AWS for the week ending Friday 30th April 2021.
To stay in the loop, make sure you subscribe on the right - There's a new Newsletter series starting soon that will keep you up to date with all our new releases, enhancements and capabilities and will also showcase lesser known but powerful features that you may not be aware of.
Of course we'd love to keep in touch at the usual places. Come and say hello on:
AWS Updates and Releases
Introducing IAM Access Control for Apache Kafka on Amazon MSK
Today we announced AWS Identity and Access Management (IAM) Access Control for Amazon MSK. IAM Access Control is a security option offered at no additional cost that simplifies cluster authentication and Apache Kafka API authorization using IAM role or user policies to control access. By using IAM Access Control, customers no longer need to build and run one-off access management systems to control client authentication and authorization for Apache Kafka, and MSK clusters are secured using least privileged permissions by default.AWS Transit Gateway Connect is now available in additional AWS Regions
Starting this week, AWS Transit Gateway Connect is now available in the Europe (Milan), Asia Pacific (Hong Kong), Africa (Cape Town), and Middle East (Bahrain) Regions.AWS Audit Manager now offers three new frameworks - NIST Cybersecurity Framework version 1.1, AWS Foundational Security Best Practices, and AWS Well-Architected framework
AWS Audit Manager now offers three new prebuilt standard frameworks: NIST Cybersecurity Framework version 1.1, AWS Foundational Security Best Practices, and AWS Well-Architected framework. These frameworks add to the existing prebuilt frameworks provided in Audit Manager. With this release, you can launch an assessment from any of these frameworks with just a few clicks. Audit Manager will map your AWS resources to the requirements in the framework you choose and start gathering evidence automatically to help you scale your audit capability in the cloud as your business grows.AWS GROUND STATION IS NOW AVAILABLE IN THE ASIA PACIFIC (SEOUL) REGION
Amazon Web Services (AWS) announces expansion of AWS Ground Station to the Asia Pacific (Seoul) region. This is now the 9th Ground Station connected to the AWS Global Network.Amazon Pinpoint Announces Journey Pause and Resume
This week, Amazon Pinpoint announced the ability for customers to pause and resume Journeys — being able to temporarily halt the execution of message sends. Previously, customers needed to stop and recreate their Journey entirely if there was a situation such as: a conflicting campaign, a seasonal event, or an issue. Journeys are multi-step campaigns that can be executed across SMS, email, and push messages. Journeys are intended for customers with user engagement use cases, and want to send targeted messaging to their users to drive high value actions.HOST RESOURCE GROUPS FOR EC2 DEDICATED HOSTS NOW SUPPORT AWS CLOUDFORMATION
Host Resource Groups , which is a logical collection of Dedicated Hosts that you can manage as a single entity, now support AWS CloudFormation , allowing customers to create Host Resource Groups using CloudFormation templates and automate EC2 Dedicated Host management.Amazon VPC Announces Pricing Change for VPC Peering
Starting May 1st 2021, all data transfer over a VPC Peering connection that stays within an Availability Zone (AZ) is now free. All data transfer over a VPC Peering connection that crosses Availability Zones will continue to be charged at the standard in-region data transfer rates. You can use the Availability Zone-ID to uniquely and consistently identify an Availability Zone across different AWS accounts.Amazon CodeGuru Reviewer now supports customer-managed customer master keys
Posted On: May 5, 2021Read More »Today, we are excited to announce support for customer-managed customer master keys to encrypt your code repositories in Amazon CodeGuru Reviewer. Customer-managed customer master keys allow you to create, own, and manage your encryption keys, giving you more control over how you manage the security of your CodeGuru Reviewer code.
AWS announces a price reduction for Amazon Managed Service for Prometheus (AMP)
This week, AWS reduced the price of metric samples ingested by up to 84% for Amazon Managed Service for Prometheus (AMP). Amazon Managed Service for Prometheus (AMP) is a fully managed Prometheus-compatible monitoring service that makes it easy to monitor containerized applications at scale. With AMP, you can use the open source Prometheus Query Language (PromQL) to monitor the performance of containerized workloads on AWS or on-premises. AMP automatically scales the ingestion, storage, and querying of operational metrics (from, for example, your Amazon Kubernetes Service (Amazon EKS) clusters) as workloads grow or shrink, and is integrated with AWS security services such as AWS Identity and Access Management (IAM), AWS PrivateLink, and AWS CloudTrail to enable fast and secure access to data.Amazon Elasticsearch Service now offers AWS Graviton2 (M6g, C6g, R6g, and R6gd) instances
Amazon Elasticsearch Service now offers instances from the AWS Graviton2 instance family. Instance types include general purpose (M6g), compute optimized (C6g), and memory optimized (R6g, R6gd). Customers can enjoy up to 38% improvement in indexing throughput, 50% reduction in indexing latency, and 30% improvement in query performance when compared to the corresponding x86-based instances from the current generation (M5, C5, R5).PORTING ASSISTANT FOR .NET NOW AVAILABLE AS A VISUAL STUDIO IDE EXTENSION
Porting Assistant for .NET is now available as a Visual Studio IDE extension. With this release, developers can access Porting Assistant for .NET directly from the Visual Studio IDE to assess incompatibilities and be more productive with an integrated experience for porting their .NET applications. Along with rich source code editing features provided by the IDE, this extension provides developers with feedback on lines of code that need to be modified to make the source code compatible with .NET Core. Developers can now run automated porting and take advantage of continuous assessment of incompatibilities as they make updates to the code.Amazon DocumentDB (with MongoDB compatibility) adds support for renameCollection, $natural, $indexOfArray, $reverseArray, $zip and indexing improvements
Amazon DocumentDB (with MongoDB compatibility) is a fast, scalable, highly available, and fully managed document database service that supports MongoDB workloads. As a document database, Amazon DocumentDB makes it easy to store, query, and index JSON data at scale.AMAZON QUICKSIGHT LAUNCHES THRESHOLD ALERTS
Amazon QuickSight can now notify users of changes to important metrics in their dashboards with threshold-based alerts. Readers and authors can set up personalized rules on key metrics in their dashboards and be automatically notified via email when data crosses the defined thresholds, highlighting important changes in their business. For instance, a manager might want to track the sales of their business and know when weekly sales drop below $100,000. To set up an alert, users can go to any QuickSight dashboard and click on a KPI or gauge visual and then use the ‘alert’ icon in order to configure the alert. Threshold alerts are billed per metric processed (which means each time an alert rule is checked) at tiered rates starting at $0.50 per 1000 metrics processed.
AMAZON DEVOPS GURU NOW GENERALLY AVAILABLE WITH ADDITIONAL CAPABILITIES
This week AWS announced the general availability (GA) of Amazon DevOps Guru – a machine learning (ML) powered service that gives you a simpler way to measure and improve an application’s operational performance and availability and reduce expensive downtime.AMAZON PERSONALIZE NOW SUPPORTS EXPORTING DATA
Amazon Personalize enables you to personalize your website, app, ads, emails, and more, using the same machine learning technology as used by Amazon.com, without requiring any prior machine learning experience. Using Amazon Personalize, you can generate personalized recommendations for your users through a simple API interface. Amazon Personalize now offers a new set of APIs to enable customers to export the data present in their Users, Items and Interactions Datasets to their own S3 buckets.
AWS OPSWORKS FOR CONFIGURATION MANAGEMENT NOW SUPPORTS PUPPET ENTERPRISE LTS VERSION 2019.8.5
AWS OpsWorks for Configuration Management now supports the current long term support (LTS) version of Puppet Enterprise for its fully managed service. Customers are upgraded automatically during the weekly system maintenance window scheduled individually by each customer.AWS Identity and Access Management (IAM) now makes it easier for you to manage permissions for AWS services accessing your resources
AWS Identity and Access Management (IAM) now supports policy conditions to help manage permissions for AWS services that access your resources. Many AWS services require access to your internal resources to perform tasks, and they often use their own service identity called a service principal to achieve this. Using the new service principal conditions, it is simple to author rules that enforce a rule for all your service principals, or exclude service principals from certain permission rules that are intended only for your own identities.
EASILY CLEAN UP UNUSED RESOURCES IN AMAZON FORECAST USING HIERARCHICAL DELETION
We are excited to announce that you can now hierarchically delete resources in Amazon Forecast at a parent level without having to locate the child resources. You can stay focused on building value adding forecasting systems and not worry about trying to manage individual resources that are created in your workflow. Amazon Forecast uses machine learning (ML) to generate more accurate demand forecasts, without requiring any prior ML experience. Amazon Forecast brings the same technology used at Amazon.com to developers as a fully managed service, removing the need to manage resources or rebuild your systems.
Amazon RDS for Oracle and Amazon RDS for PostgreSQL now support Amazon RDS Encrypted Cross-Region Automated Backups
Starting today Amazon Relational Database Service (RDS) for Oracle and Amazon RDS for PostgreSQL now support Amazon RDS Encrypted Cross-Region Automated Backups. This feature extends the existing RDS backup functionality, giving you the ability to set up automatic replication of system snapshots and transaction logs from a primary AWS Region to a secondary AWS Region. These backups are encrypted using an AWS KMS customer master key in the destination Region.Amazon CloudFront announces CloudFront Functions, a lightweight edge compute capability
Amazon CloudFront announces the general availability of CloudFront Functions, a new serverless edge compute capability. You can use this new CloudFront feature to run JavaScript functions across 225+ CloudFront edge locations in 90 cities across 47 countries. CloudFront Functions is built for lightweight HTTP(S) transformations and manipulations, allowing you to deliver richer, more personalized content with low latency to your customers.AWS TRANSIT GATEWAY NETWORK MANAGER IS NOW AVAILABLE IN AWS ASIA PACIFIC (OSAKA) REGION
Starting today, AWS Transit Gateway Network Manager is now available in the AWS Asia Pacific (Osaka) Region.Introducing Amazon FinSpace, a fully managed service to store, prepare, and analyze data for the financial services industry (FSI)
Amazon FinSpace is a new fully managed data management and analytics service that makes it easy to store, catalog, and prepare financial industry data at scale, reducing the time it takes for financial services industry (FSI) customers to find and access all types of financial data for analysis from months to minutes.
AMAZON DYNAMODB LOCAL NOW SUPPORTS THE AWS SDK FOR JAVA 2.X
You now can use the AWS SDK for Java 2.x with DynamoDB local, the downloadable version of Amazon DynamoDB. With DynamoDB local, you can develop and test applications by using a version of DynamoDB running in your local development environment without incurring any additional costs. DynamoDB local does not require an internet connection, and it works with your existing DynamoDB API calls.
Google Cloud Releases and Updates
Anthos clusters on VMware 1.7.1-gke.4 is now available. To upgrade, see Upgrading Anthos clusters on VMware. Anthos clusters on VMware 1.7.1-gke.4 runs on Kubernetes 1.19.7-gke.2400.
The supported versions that offer the latest patches and updates for security vulnerabilities, exposures, and issues impacting Anthos clusters on VMware are 1.7, 1.6, and 1.5.
Cloud Monitoring
Security Command Center Premium has launched Continuous Exports for Pub/Sub in general availability. The feature simplifies the process of creating a NotificationConfig
and automates the export of new findings to Pub/Sub.
You must be a Security Command Center Premium customer to use the feature. Security Command Center Standard continues to support one-time exports. To subscribe to Security Command Center Premium, contact your sales representative or fill out our inquiry form
Microsoft Azure Releases And Updates
APPEND BLOB SUPPORT IN AZURE DATA LAKE STORAGE IS NOW GENERALLY AVAILABLE
Applications can now create append blobs in addition to block blobs in Azure Data Lake Storage accounts and append to them using Append Block operations. Applications that need to add information to existing files efficiently and continuously can leverage append blobs.
General availability: Multiple features for Azure VPN Gateway
Take advantage of multiple new enhancements and features that are now generally available in Azure VPN Gateway.
General availability: Custom Translator—May new features, improvements and bug fixes
Review the Microsoft Custom Translator new features, improvements, bug fixes, and new/refreshed models for May 2021.
Azure Backup: Operational backup for Azure Blobs is now generally available
Operational backup for Azure Blobs gives you a managed data protection solution for block blobs in your storage accounts.
General availability: Azure Log Analytics UI updates May 2021
Azure Log Analytics for May 2021 include a new and updated experience for custom logs management and pinned parts filter integration.
AZURE DATA SHARE PREVIEW API VERSIONS WILL NO LONGER BE SUPPORTED STARTING AUGUST 1, 2021
TARGET RETIREMENT DATE: AUGUST 01, 2021
Beginning August 1, 2021, you will no longer be able to access Azure Data Share preview API versions (2018-11-01-preview, 2020-06-01-preview) through REST API or SDK.
NEW NPV1 VIRTUAL MACHINES ARE NOW GENERALLY AVAILABLE
New Xilinx Alveo U250 FPGA NPv1 VMs are now generally available in West US 2, East US, West Europe, and Southeast Asia.
Public preview: AKS support for Secrets Store Container Storage Interface
Access your secrets securely via the container's file system.
General availability: Azure Maps- new Gen2 pricing model available
Get new Azure Maps features and potential cost savings with Gen2 pricing.
Azure Security Center: General availability updates for April 2021
New enhancements and updates released for general availability (GA) in Azure Security Center in April 2021.
Azure Security Center: Public preview updates for April 2021
Public preview enhancements and updates released for Azure Security Center in April 2021
Read more about Hava Azure Network Topology Diagrams here.
Read more about Hava AWS Network Topology Diagrams here.
Read more about Hava GCP Network Topology Diagrams here